Live Webinar: Detox Your SOC

Even after implementing SOAR, SIEM, IDPS and other technologies to improve security insights, companies still spend thousands of hours triaging alerts that are mostly false positives. Given the ever-increasing volume of alerts, SOC teams are forced into a "do what you can do" strategy that focuses on high-value, high risk assets, tuning alert thresholds to reduce alert volume, and ignoring certain types of alerts.

However, Richard Henderson, Lastline's Head of Global Threat Intelligence, cautions that these practices put an organization at greater risk for the loss of data, customers, and reputation. He shares details of a better approach that automates threat detection and response, including:

AI that distinguishes between benign and malicious behavior to dramatically reduce false positives

High-fidelity alerts with relevant context and linkage with data from across the network

Please fill out the following fields (All fields required):

Subscription Preferences:

Live Webinar: Detox Your SOC

Request to Republish Content

Live Webinar: Detox Your SOC

Email this Content

Live Webinar: Detox Your SOC

Richard Henderson

Head of Global Threat Intelligence, Lastline

Richard Henderson is Head of Global Threat Intelligence, where he is responsible for trend-spotting, industry-watching, and evangelizing the unique capabilities of Lastline's technologies. He has nearly two decades of experience and involvement in the global hacker community and discovers new trends and activities in the cyber-underground. He is a researcher and regular presenter at conferences and events and was lauded by a former US DHS undersecretary for cybersecurity as having an "insightful view" on the current state of cybersecurity. Henderson was one of the first researchers in the world to defeat Apple's TouchID fingerprint sensor on the iPhone 5S. He has taught courses on radio interception techniques multiple times at the DEFCON hacker conference. Henderson is a regular writer and contributor to many publications including BankInfoSecurity, Forbes, Dark Reading, and CSO.